Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/BFHNNvcpos25isgxIE184QJkczg.roa
File: BFHNNvcpos25isgxIE184QJkczg.roa (raw, json)
Hash identifier: o8h8MST6CdgMKrukRk9ld6AJ6xfl79tU4I2CG2Ol1KA=
Subject key identifier: 04:51:CD:36:F7:29:A2:CD:B9:8A:C8:31:20:4D:7C:E1:02:64:73:38
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 018CB60399081DE15C6A49BF3BC01DA45452
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/BFHNNvcpos25isgxIE184QJkczg.roa
Signing time: Fri 29 Dec 2023 14:38:58 +0000
ROA not before: Fri 29 Dec 2023 14:38:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 81.161.12.0/22 maxlen: 22
176.107.64.0/20 maxlen: 24
93.120.112.0/21 maxlen: 21
93.120.124.0/22 maxlen: 22
89.46.112.0/23 maxlen: 24
91.235.166.0/24 maxlen: 24
91.235.167.0/24 maxlen: 24
195.80.142.0/23 maxlen: 24
188.213.233.0/24 maxlen: 24
93.120.64.0/21 maxlen: 21
31.133.192.0/24 maxlen: 24
193.221.82.0/23 maxlen: 24
31.133.193.0/24 maxlen: 24
31.133.195.0/24 maxlen: 24
31.133.199.0/24 maxlen: 24
93.120.76.0/22 maxlen: 22
31.133.196.0/23 maxlen: 23
31.133.194.0/24 maxlen: 24
93.120.75.0/24 maxlen: 24
93.120.72.0/23 maxlen: 23
31.133.198.0/24 maxlen: 24
93.120.84.0/24 maxlen: 24
93.120.80.0/22 maxlen: 22
93.120.85.0/24 maxlen: 24
91.234.222.0/23 maxlen: 23
91.234.220.0/23 maxlen: 23
93.120.90.0/24 maxlen: 24
93.120.88.0/23 maxlen: 23
93.120.86.0/23 maxlen: 23
93.120.94.0/23 maxlen: 23
93.120.92.0/23 maxlen: 23
91.234.150.0/23 maxlen: 23
93.120.28.0/23 maxlen: 23
93.120.27.0/24 maxlen: 24
93.120.30.0/24 maxlen: 24
93.120.33.0/24 maxlen: 24
93.120.48.0/20 maxlen: 20
171.25.223.0/24 maxlen: 24
176.112.84.0/22 maxlen: 22
91.246.188.0/22 maxlen: 22
91.246.196.0/22 maxlen: 22
91.246.201.0/24 maxlen: 24
89.45.92.0/23 maxlen: 24
178.159.152.0/21 maxlen: 21
178.159.148.0/22 maxlen: 22
91.233.202.0/23 maxlen: 23
91.240.156.0/22 maxlen: 22
77.232.192.0/23 maxlen: 24
77.232.196.0/22 maxlen: 22
185.104.196.0/22 maxlen: 24
77.232.194.0/23 maxlen: 23
77.232.204.0/22 maxlen: 22
77.232.200.0/22 maxlen: 22
77.232.208.0/21 maxlen: 21
176.124.176.0/22 maxlen: 22
86.104.132.0/23 maxlen: 24
176.124.180.0/22 maxlen: 22
176.118.88.0/22 maxlen: 22
77.232.220.0/22 maxlen: 22
176.118.92.0/22 maxlen: 22
91.239.178.0/24 maxlen: 24
176.98.56.0/22 maxlen: 22
176.98.60.0/22 maxlen: 22
91.233.2.0/23 maxlen: 23
89.44.100.0/23 maxlen: 24
91.225.35.0/24 maxlen: 24
91.231.226.0/24 maxlen: 24
91.225.34.0/24 maxlen: 24
91.231.224.0/23 maxlen: 23
91.231.223.0/24 maxlen: 24
64.43.66.0/23 maxlen: 23
64.43.68.0/22 maxlen: 22
64.43.76.0/24 maxlen: 24
64.43.80.0/21 maxlen: 21
64.43.88.0/22 maxlen: 22
77.36.52.0/23 maxlen: 23
176.110.106.0/24 maxlen: 24
77.36.80.0/21 maxlen: 21
176.110.107.0/24 maxlen: 24
77.36.88.0/24 maxlen: 24
77.36.90.0/23 maxlen: 23
85.204.196.0/23 maxlen: 24
77.36.89.0/24 maxlen: 24
176.110.114.0/23 maxlen: 23
77.36.96.0/20 maxlen: 20
77.36.92.0/22 maxlen: 22
91.245.176.0/21 maxlen: 21
37.97.122.0/23 maxlen: 23
185.9.240.0/22 maxlen: 22
185.9.236.0/22 maxlen: 22
176.111.4.0/22 maxlen: 22
176.111.0.0/22 maxlen: 22
91.239.0.0/22 maxlen: 22
176.97.144.0/22 maxlen: 22
176.97.148.0/22 maxlen: 22
188.191.248.0/22 maxlen: 22
91.232.16.0/23 maxlen: 23
91.232.20.0/24 maxlen: 24
31.131.12.0/22 maxlen: 22
193.36.192.0/21 maxlen: 21
193.36.202.0/24 maxlen: 24
176.96.56.0/21 maxlen: 21
91.237.194.0/23 maxlen: 23
77.36.8.0/21 maxlen: 21
176.96.176.0/22 maxlen: 22
176.96.180.0/22 maxlen: 22
77.36.30.0/24 maxlen: 24
77.36.28.0/23 maxlen: 23
77.36.32.0/22 maxlen: 22
77.36.36.0/23 maxlen: 23
89.42.232.0/23 maxlen: 24
77.36.40.0/21 maxlen: 21
77.36.38.0/23 maxlen: 23
77.36.48.0/22 maxlen: 22
176.116.40.0/21 maxlen: 21
31.135.1.0/24 maxlen: 24
31.135.3.0/24 maxlen: 24
31.135.7.0/24 maxlen: 24
91.229.16.0/23 maxlen: 23
91.229.31.0/24 maxlen: 24
176.121.96.0/21 maxlen: 21
193.0.190.0/24 maxlen: 24
91.229.156.0/23 maxlen: 23
91.229.159.0/24 maxlen: 24
91.229.158.0/24 maxlen: 24
89.34.74.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:b6:03:99:08:1d:e1:5c:6a:49:bf:3b:c0:1d:a4:54:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: Dec 29 14:38:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0451cd36f729a2cdb98ac831204d7ce102647338
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:3d:87:b7:e9:ed:c9:de:da:91:86:c9:19:0b:
74:1f:c9:66:ef:2a:58:33:24:9e:47:24:ea:53:c2:
b9:b2:49:13:d8:ea:b5:7c:74:4f:ba:83:20:9b:4b:
f8:5c:0b:07:c3:0d:68:c7:ad:21:73:6c:5d:87:19:
5a:40:43:46:61:72:e4:20:f3:56:87:34:35:57:cf:
e6:ac:50:30:4c:1f:10:4c:f0:54:fa:c7:72:9e:bc:
19:1f:f3:b6:62:f7:2c:2a:69:44:c4:e7:7e:a0:c2:
f9:ec:20:71:c1:aa:a2:7a:7a:ab:a1:2a:10:ff:8b:
5f:2b:7a:88:b0:f2:95:a0:c4:4a:c0:2a:f3:f7:3d:
01:d5:b4:42:20:4e:ac:2a:7e:ad:e1:28:01:d8:14:
18:ce:58:c7:77:f0:e2:e0:5c:83:7a:71:0a:08:c3:
64:75:e9:fa:75:07:c1:3c:3e:43:5a:7f:73:a6:18:
94:84:2f:e7:51:0f:e0:25:cb:5e:1b:99:35:02:3d:
5c:dd:c6:ae:c2:3e:f3:2a:23:9a:2e:1c:86:72:61:
a2:04:42:21:d4:1d:f1:e8:34:ca:7a:4b:50:a0:9c:
73:5e:fd:63:b8:13:d1:50:9d:b1:fa:c6:e0:e2:08:
4c:2a:10:fb:c7:6a:f4:c4:25:fa:36:ed:de:a2:40:
42:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:51:CD:36:F7:29:A2:CD:B9:8A:C8:31:20:4D:7C:E1:02:64:73:38
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/BFHNNvcpos25isgxIE184QJkczg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.131.12.0/22
31.133.192.0/21
31.135.1.0/24
31.135.3.0/24
31.135.7.0/24
37.97.122.0/23
64.43.66.0-64.43.71.255
64.43.76.0/24
64.43.80.0-64.43.91.255
77.36.8.0/21
77.36.28.0-77.36.30.255
77.36.32.0-77.36.53.255
77.36.80.0-77.36.111.255
77.232.192.0-77.232.215.255
77.232.220.0/22
81.161.12.0/22
85.204.196.0/23
86.104.132.0/23
89.34.74.0/23
89.42.232.0/23
89.44.100.0/23
89.45.92.0/23
89.46.112.0/23
91.225.34.0/23
91.229.16.0/23
91.229.31.0/24
91.229.156.0/22
91.231.223.0-91.231.226.255
91.232.16.0/23
91.232.20.0/24
91.233.2.0/23
91.233.202.0/23
91.234.150.0/23
91.234.220.0/22
91.235.166.0/23
91.237.194.0/23
91.239.0.0/22
91.239.178.0/24
91.240.156.0/22
91.245.176.0/21
91.246.188.0/22
91.246.196.0/22
91.246.201.0/24
93.120.27.0-93.120.30.255
93.120.33.0/24
93.120.48.0-93.120.73.255
93.120.75.0-93.120.90.255
93.120.92.0/22
93.120.112.0/21
93.120.124.0/22
171.25.223.0/24
176.96.56.0/21
176.96.176.0/21
176.97.144.0/21
176.98.56.0/21
176.107.64.0/20
176.110.106.0/23
176.110.114.0/23
176.111.0.0/21
176.112.84.0/22
176.116.40.0/21
176.118.88.0/21
176.121.96.0/21
176.124.176.0/21
178.159.148.0-178.159.159.255
185.9.236.0-185.9.243.255
185.104.196.0/22
188.191.248.0/22
188.213.233.0/24
193.0.190.0/24
193.36.192.0/21
193.36.202.0/24
193.221.82.0/23
195.80.142.0/23
Signature Algorithm: sha256WithRSAEncryption
47:d3:72:18:12:85:47:b1:f2:1e:99:74:f2:c9:12:0b:74:92:
c8:99:99:13:dc:89:80:38:db:d5:2b:e4:07:67:9c:37:ea:7d:
59:8b:30:7a:45:31:c4:d2:bf:e7:cb:9d:d5:4b:c8:ab:8c:89:
49:ef:73:c3:6d:99:77:ae:49:95:38:57:cc:33:4a:16:5a:2c:
e4:aa:39:da:7e:bb:98:49:85:40:cd:28:0b:76:ac:7f:ee:3f:
14:cb:19:6f:cd:e0:a1:d3:92:a6:68:98:92:34:1e:5c:c4:72:
dc:83:e8:3a:06:8f:e1:a8:ab:06:af:41:4c:c7:af:93:ad:73:
68:c9:ec:22:35:0b:db:5d:fd:35:41:93:05:c3:7a:51:83:dd:
bd:3d:0d:19:b1:2c:5c:9d:41:3a:28:5c:b7:b9:50:98:61:85:
83:d0:92:a5:79:90:8c:b9:de:c4:e5:fb:10:9f:25:7c:fd:2c:
6e:6d:e1:99:45:52:bd:f4:44:64:16:a6:c6:eb:79:21:30:f6:
0e:d7:2f:75:91:e4:25:aa:55:17:4c:74:5b:26:d2:fe:fd:5e:
69:22:79:6e:40:f3:78:85:87:c4:da:a0:c9:4d:2e:81:e1:f5:
9d:c0:c6:d1:c3:46:15:d8:8c:63:01:c4:08:5d:b3:e4:a0:c3:
e5:d4:b6:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:48 2024 by rpki-client on console-ams.rpki-client.org